- Description
- The rds_ib_xmit function in net/rds/ib_send.c in the Reliable Datagram Sockets (RDS) protocol implementation in the Linux kernel 3.7.4 and earlier allows local users to cause a denial of service (BUG_ON and kernel panic) by establishing an RDS connection with the source IP address equal to the IPoIB interface's own IP address, as demonstrated by rds-ping.
- Source
- secalert@redhat.com
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 4.4
- Impact score
- 6.9
- Exploitability score
- 2.7
- Vector string
- AV:L/AC:M/Au:S/C:N/I:N/A:C
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AAAEC09C-2D88-4225-8404-B4F37B92CD0E",
"versionEndIncluding": "3.7.4"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:3.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "53ED9A31-99CC-41C8-8B72-5B2A9B49AA6C"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:3.7.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EFD646BC-62F7-47CF-B0BE-768F701F7D9A"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:3.7.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F43D418E-87C1-4C83-9FF1-4F45B4F452DD"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:3.7.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "680D0E00-F29A-487C-8770-8E7EAC672B7C"
}
],
"operator": "OR"
}
]
}
]